1fc1a1321d2e474bd6c98a0b87793aaf12687a2a1d6e861a712659989218df0b

Sharing

Copy URL Twitter E-mail

General

Target

1fc1a1321d2e474bd6c98a0b87793aaf12687a2a1d6e861a712659989218df0b
Size

63KB
MD5

b0bce60dca7df2407d152a6a671184dc
SHA1

73ebeb764f9f9df190f785608cc7c767b53d38db
SHA256

1fc1a1321d2e474bd6c98a0b87793aaf12687a2a1d6e861a712659989218df0b
SHA512

5cc4431da2437a106be94a9509f83a7d13780b73e5810fc8dd1b3251a4440a0c660708149051f791f1d253631300a2a89c43dc5bcb6108dc6a02139ae5ec9f3b
SSDEEP

1536:2O72i9TSFKNHIQogWpS5puTfUjT4ETVD:2pSTQC7ohw5pIf+zh

Score

N/A

Malware Config

Signatures

Files

1fc1a1321d2e474bd6c98a0b87793aaf12687a2a1d6e861a712659989218df0b
.exe windows x86

f6c4969fd6e7a11ab2246ef0183ff190

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LockWorkStation
IsCharLowerA
DestroyWindow
DdeUnaccessData
NotifyWinEvent
RegisterClipboardFormatW
AppendMenuA
GetDC
GetWindowTextA
MoveWindow
IsCharUpperA
VkKeyScanExW
SetWindowsHookExW
CreatePopupMenu
SetDoubleClickTime
OpenIcon
BringWindowToTop
EnumWindowStationsW
MapDialogRect
WaitForInputIdle
RegisterDeviceNotificationW
DdeCreateStringHandleA
CreateCaret
GetThreadDesktop
LoadKeyboardLayoutA
ScrollWindowEx
GetGUIThreadInfo

urlmon

UrlMkSetSessionOption
CoInternetCombineUrl
URLOpenStreamW
HlinkNavigateMoniker
CoInternetGetProtocolFlags

advapi32

RegDeleteKeyA
GetSecurityDescriptorControl
RegSaveKeyA
RegRestoreKeyW

kernel32

MultiByteToWideChar
LCMapStringW
HeapSize
RtlUnwind
Sleep
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
GetStringTypeW
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapCreate
HeapAlloc
HeapReAlloc
IsProcessorFeaturePresent
WriteFile
GetLastError
GetFileAttributesA
lstrcpyA
lstrcmpW
lstrcatW
lstrcmpA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6c4969fd6e7a11ab2246ef0183ff190

Headers

DLL Characteristics

File Characteristics

Imports

user32

urlmon

advapi32

kernel32

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 7KB - Virtual size: 10KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 7KB - Virtual size: 10KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 2KB - Virtual size: 2KB